Rust Penetration Testing Projects

• noseyparker

  13 1,511 9.4 Rust

  Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.

  

Project mention: Magika: AI powered fast and efficient file type identification | news.ycombinator.com | 2024-02-15

Yes!

Sometimes a file has no extension. Other times the extension is a lie. Still other times, you may be dealing with an unnamed bytestring and wish to know what kind of content it is.

This last case happens quite a lot in Nosey Parker [1], a detector of secrets in textual data. There, it is possible to come across unnamed files in Git history, and it would be useful to the user to still indicate what type of file it seems to be.

I added file type detection based on libmagic to Nosey Parker a while back, but it's not compiled in by default because libmagic is slow and complicates the build process. Also, libmagic is implemented as a large C library whose primary job is parsing, which makes the security side of me jittery.

I will likely add enabled-by-default filetype detection to Nosey Parker using Magika's ONNX model.

[1] https://github.com/praetorian-inc/noseyparker

• sh4d0wup

  3 117 7.1 Rust

  Signing-key abuse and update exploitation framework

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

Rust Penetration Testing related posts

• GitHub: Can no longer search code without being logged in
  1 project | news.ycombinator.com | 27 Nov 2023
• What's everyone working on this week (26/2023)?
  15 projects | /r/rust | 26 Jun 2023
• Show HN: Nosey Parker, a fast and low-noise secrets detector for textual data
  1 project | /r/hypeurls | 2 Mar 2023
• Nosey Parker, a fast and low-noise secrets detector, now supports enumerating GitHub repositories and writing results in SARIF format
  1 project | /r/blueteamsec | 2 Mar 2023
• Show HN: Nosey Parker, a fast and low-noise secrets detector for textual data
  2 projects | news.ycombinator.com | 2 Mar 2023
• Nosey Parker, a newer secrets detector, can scan 100GB of Linux kernel commit history in 2 minutes on a laptop, and now can write SARIF output
  1 project | /r/SAST | 2 Mar 2023
• Nosey Parker, a fast secrets detector, now enumerates GitHub repos, writes SARIF output, and has 90 default rules
  1 project | /r/netsec | 2 Mar 2023
• A note from our sponsor - InfluxDB
  www.influxdata.com | 27 Apr 2024

  Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Rust projects with our weekly report!